Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-89 (SQL命令中使用的特殊元素转义处理不恰当(SQL注入)) — Vulnerability Class 8858

8858 vulnerabilities classified as CWE-89 (SQL命令中使用的特殊元素转义处理不恰当(SQL注入)). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2021-24185 Tutor LMS < 1.7.7 - SQL Injection via tutor_place_rating — Tutor LMS – eLearning and online course solution 6.5 -2021-04-05
CVE-2021-24186 Tutor LMS < 1.8.3 - SQL Injection via tutor_answering_quiz_question/get_answer_by_id — Tutor LMS – eLearning and online course solution 6.5 -2021-04-05
CVE-2021-21380 Rating Script Service expose XWiki to SQL injection — xwiki-platform 7.7 High2021-03-23
CVE-2021-24142 301 Redirects - Easy Redirect Manager < 2.51 - Authenticated SQL Injection — 301 Redirects - Easy Redirect Manager 7.2 -2021-03-18
CVE-2021-24143 AccessPress Social Icons < 1.8.1 - Authenticated SQL Injection — AccessPress Social Icons 8.8 -2021-03-18
CVE-2021-24149 Modern Events Calendar Lite < 5.16.6 - Authenticated SQL Injection — Modern Events Calendar Lite 8.8 -2021-03-18
CVE-2021-24137 Blog2Social: Social Media Auto Post & Scheduler < 6.3.1 - Authenticated SQL Injection — Blog2Social: Social Media Auto Post & Scheduler 8.8 -2021-03-18
CVE-2021-24138 AdRotate < 5.8.4 - Authenticated SQL Injection — AdRotate 7.2 -2021-03-18
CVE-2021-24139 Photo Gallery by 10Web < 1.5.55 - Unauthenticated SQL Injection — Photo Gallery by 10Web 9.8 -2021-03-18
CVE-2021-24140 Ajax Load More < 5.3.2 - Authenticated SQL Injection — Ajax Load More 9.8 -2021-03-18
CVE-2021-24141 Advanced Database Cleaner < 3.0.2 - Authenticated SQL injection — Advanced Database Cleaner 7.2 -2021-03-18
CVE-2021-24125 Contact Form Submissions < 1.7.1 - Authenticated SQL Injection — Contact Form Submissions 7.2 -2021-03-18
CVE-2021-24130 WP Google Map Plugin < 4.1.5 - Authenticated SQL Injection — WP Google Map Plugin 7.2 -2021-03-18
CVE-2021-24131 Anti-Spam by CleanTalk < 5.149 - Multiple Authenticated SQL Injections — Anti-Spam by CleanTalk 7.2 -2021-03-18
CVE-2021-24132 Slider by 10Web < 1.2.36 - Multiple Authenticated SQL Injection — Slider by 10Web 8.8 -2021-03-18
CVE-2021-22848 HGiga MailSherlock - SQL Injection-2 — MailSherlock MSR45/SSR45 7.0 High2021-03-18
CVE-2021-22859 EIC e-document system - SQL Injection — e-document system 9.8 Critical2021-03-17
CVE-2021-22854 Soar Cloud System Co., Ltd. HR Portal - SQL Injection — HR Portal 7.5 High2021-02-17
CVE-2021-22856 ChanGate EnterPrise Co., Ltd property management system - SQL Injection — property management system 9.8 Critical2021-02-17
CVE-2020-27869 SolarWinds Network Performance Monitor SQL注入漏洞 — Network Performance Monitor 8.8 -2021-02-11
CVE-2021-21024 Magento Commerce Blind SQL Injection Could Lead To Unauthorized Access — Magento Commerce 6.5 -2021-02-11
CVE-2021-22658 Advantech Iview SQL注入漏洞 — Advantech iView 9.8 -2021-02-11
CVE-2021-22654 Advantech Iview SQL注入漏洞 — Advantech iView 7.5 -2021-02-11
CVE-2021-20016 Sonicwall SMA100 SQL注入漏洞 — SonicWall SMA100 9.8 -2021-02-03
CVE-2020-5427 Possibility of SQL Injection in Spring Cloud Data Flow Task Execution Sorting Query — Spring Cloud Data Flow 7.2 -2021-01-27
CVE-2020-5428 Possibility of SQL Injection in Spring Cloud Task Execution Sorting Query — Spring Cloud Task 6.7 -2021-01-27
CVE-2021-22847 Hyweb HyCMS-J1 - SQL Injection — HyCMS-J1 8.8 High2021-01-22
CVE-2021-1222 Cisco Smart Software Manager Satellite SQL Injection Vulnerability — Cisco Smart Software Manager On-Prem 8.1 -2021-01-20
CVE-2021-1225 Cisco SD-WAN vManage SQL Injection Vulnerabilities — Cisco SD-WAN vManage 9.1 -2021-01-20
CVE-2021-1248 Cisco Data Center Network Manager SQL Injection Vulnerabilities — Cisco Data Center Network Manager 8.8 High2021-01-20

Vulnerabilities classified as CWE-89 (SQL命令中使用的特殊元素转义处理不恰当(SQL注入)) represent 8858 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.